Wireshark-users: Re: [Wireshark-users] Hacking question

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: "Rick Leib" <RLeib@xxxxxxxxxxxx>
Date: Tue, 24 Feb 2009 06:59:57 -0800

How do I get off this list?  I don't remember signing up for it.

 

Thank You,

 

 

Rick Leib, MCSE CISSP

Director, IT

http://www.Dexterra.com

rleib@xxxxxxxxxxxx (MSN IM)

206.714.6974 (c)

425.939.3196 (w)

 

From: wireshark-users-bounces@xxxxxxxxxxxxx [mailto:wireshark-users-bounces@xxxxxxxxxxxxx] On Behalf Of Edsel barrios
Sent: Tuesday, February 24, 2009 6:55 AM
To: Community support list for Wireshark
Subject: [Wireshark-users] Hacking question

 

I am using WireShark 1.0.3 and I was running a scan on my network when I noticed some weird packages coming from the outside and they had a prefix of Brutus

1573    250.604174    10.0.0.5    129.101.198.59    TCP    brutus > http [ACK] Seq=515 Ack=5841 Win=17520 Len=0

has anyone seen something like this. Honestly my first thought was of the password sniffer Brutus.

Any ideas would be appreciated.

Thank you,
Edsel